• erAckA
    link
    fedilink
    arrow-up
    2
    ·
    8 months ago

    Malicious account holders with a long term goal need to build reputation. It doesn’t matter much that such an app isn’t a dependency of other software.

    • steeznson@lemmy.world
      link
      fedilink
      arrow-up
      5
      ·
      8 months ago

      Practically every FOSS project is actively looking for volunteers/maintainers all of the time. More contributors are not problematic.

      The xz problem was that they socially engineered the main dev into giving them the keys to the kingdom.